>From a quick look not sure how feasible this is to get into Bionic this late in the cycle?
Quick Summary of changes (https://libzip.org/news/): - There is a 1.3.2 build in Debian experimental, but hasnt progressed into unstable yet - A couple of CVE fixes (these should probably be cherry-picked regardless) - A bunch of bug fixes - A number of new features like bzip2, improved AES encryption support, some of the new features are other platforms only - Breaks API, soname bump, so will require a mini transition, all the 23-odd reverse-depends that I count are in universe though. Have not yet checked if any of these are affected by the API changes or can just be rebuilt. - they appear to have dropped their custom AES implementation in favour of using openssl (this should be a plus!) - Build system switched to Cmake in latest release -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1674057 Title: [needs packaging] upgrade libzip to version 1.20 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libzip/+bug/1674057/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
